Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/3139332e3130362e36342e302f32342d3234203d3e203630383630.roa
File: 3139332e3130362e36342e302f32342d3234203d3e203630383630.roa (raw, json)
Hash identifier: G3H4jbMqiw5DQSMLQn1fJ6uJtDMGKpTXzheKy4E+Q/Y=
Subject key identifier: DE:21:5B:6B:4A:84:9B:3A:78:32:D6:8A:D5:D6:DB:C8:1B:7D:63:13
Certificate issuer: /CN=d18f31b98ed35ec23be81c3fffefd1a354dad96a
Certificate serial: 2C87C3246CC6DC621B2926BDAA7C0C637E38A958
Authority key identifier: D1:8F:31:B9:8E:D3:5E:C2:3B:E8:1C:3F:FF:EF:D1:A3:54:DA:D9:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/3139332e3130362e36342e302f32342d3234203d3e203630383630.roa
Signing time: Thu 12 Feb 2026 19:49:22 +0000
ROA not before: Thu 12 Feb 2026 19:44:22 +0000
ROA not after: Thu 11 Feb 2027 19:49:22 +0000
asID: 60860
IP address blocks: 193.106.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl
rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:87:c3:24:6c:c6:dc:62:1b:29:26:bd:aa:7c:0c:63:7e:38:a9:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18f31b98ed35ec23be81c3fffefd1a354dad96a
Validity
Not Before: Feb 12 19:44:22 2026 GMT
Not After : Feb 11 19:49:22 2027 GMT
Subject: CN=DE215B6B4A849B3A7832D68AD5D6DBC81B7D6313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e5:59:b2:f7:b3:29:56:e9:34:9b:9d:25:68:
b7:63:4f:6b:52:22:3b:ea:c4:d5:39:48:b0:19:b6:
d5:07:81:1f:8c:9a:22:67:f1:93:69:03:1b:62:1c:
21:49:63:38:f6:8b:6d:0f:e2:6b:e9:4a:30:fc:22:
a3:cb:6f:7b:5b:0b:45:e3:82:a5:8b:ea:b3:1e:10:
12:53:0e:e6:76:ff:b3:33:f4:f0:cb:7f:c5:b2:26:
f4:ed:22:51:e9:73:61:47:9f:0e:92:a0:48:c1:cb:
13:48:c0:cf:91:19:6f:6b:b5:b4:11:58:8b:7e:33:
41:8c:ca:c7:bd:20:16:9e:16:87:0d:53:53:c2:fd:
dd:d6:0b:a6:c1:39:a0:f5:b4:08:ea:2c:6b:cf:5f:
2f:1d:4f:51:2e:c2:3d:f1:8e:da:52:fc:a9:1a:0f:
36:38:9b:d3:d9:f4:80:10:c4:e2:64:5f:b1:68:a1:
cd:25:51:0b:42:21:cb:2a:3f:f9:40:c8:a2:9b:fa:
7b:4f:d4:64:32:7c:f1:01:e4:5e:5d:6e:0c:50:62:
c1:aa:d4:c0:7f:e2:7b:d4:27:9d:5b:8b:f7:6d:3d:
34:d0:9a:00:41:72:7f:fd:09:4c:77:f5:aa:15:da:
91:c8:12:b1:de:74:9d:77:5d:c5:79:92:7e:62:79:
3f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:21:5B:6B:4A:84:9B:3A:78:32:D6:8A:D5:D6:DB:C8:1B:7D:63:13
X509v3 Authority Key Identifier:
keyid:D1:8F:31:B9:8E:D3:5E:C2:3B:E8:1C:3F:FF:EF:D1:A3:54:DA:D9:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/3139332e3130362e36342e302f32342d3234203d3e203630383630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.64.0/24
Signature Algorithm: sha256WithRSAEncryption
85:0f:11:e2:ef:8c:66:68:d5:f1:93:50:7a:31:27:6d:44:d6:
47:e1:d2:b0:6c:9e:2f:c4:80:c9:36:e0:2d:06:ec:99:d8:ae:
61:d4:8d:b8:56:0e:50:72:75:09:54:5c:5e:6d:61:43:1a:a5:
38:b2:06:70:18:39:65:11:45:6f:21:f3:47:3f:a2:65:78:7d:
dd:a1:34:fd:09:27:a0:b5:03:07:c7:e0:9d:5a:ed:c7:1d:01:
8d:8c:33:56:79:d3:90:53:aa:06:1c:0f:3f:24:f9:b6:29:ef:
0f:1d:b8:bd:c8:16:61:5c:8a:ff:57:6b:e9:35:4c:44:b1:38:
85:d5:66:20:e6:d9:4f:8f:c7:94:00:71:85:6e:68:a5:49:a8:
25:60:b8:32:2a:fa:cc:91:cb:72:95:5b:fb:37:56:ef:f2:81:
f6:a0:40:25:0d:78:d2:5e:7a:a4:50:1b:97:d2:4b:b8:47:cd:
f2:3a:91:20:56:48:69:8d:8a:42:98:30:b1:3c:b6:01:be:30:
71:d4:1e:e4:b8:0d:2b:2c:00:0b:4f:57:7a:85:9a:6e:f7:63:
74:56:c0:b7:2e:e2:f2:17:2e:9d:bc:d3:1e:81:13:36:2b:71:
25:6b:26:ae:74:9c:2f:d8:4c:f2:5e:65:9b:68:6c:7e:b0:77:
eb:1a:ce:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:30:05 2026 by rpki-client